Only the latest release of intent-cli receives security fixes.
Do not open a public GitHub issue for security vulnerabilities.
Send a report to the maintainers via GitHub's private vulnerability reporting.
Include:
- A description of the vulnerability and its potential impact
- Steps to reproduce or a proof-of-concept
- Any suggested mitigations, if known
We will acknowledge receipt within 5 business days and aim to release a fix within 30 days for confirmed critical issues.